CNNVD-202512-1134 Information
CNNVD ID
CNNVD-202512-1134
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
PCI-SIG PCI Express Integrity and Data Encryption是美国PCI-SIG公司的一个数据加密软件。 PCI-SIG PCI Express Integrity and Data Encryption存在安全漏洞,该漏洞源于设备重新绑定期间重新密钥和流刷新指导不足,可能导致来自先前安全上下文的陈旧写入事务在新上下文中处理。
Description (English)
PCI-SIG PCI Enterprises Information and Data Enrichption is a data encryption software for PCI-SIG in the United States. There is a security loophole in PCI-SIG PCI Operations Information and Data Encryption, which stems from the lack of re-keys and flow-up guidance during equipment re-locking, which may result in old writing matters from the previous security context being addressed in the new context.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
PCI-SIG
Published
2025-12-09
Last Modified
2026-02-24
References
https://pcisig.com/specifications https://pcisig.com/PCIeIDEStandardVulnerabilities https://access.redhat.com/security/cve/cve-2025-9614
Patch
https://pcisig.com/PCIeIDEStandardVulnerabilities
Share on: